$ rpki-client -vvf repo-rpki.idnic.net/repo/e46f5a05-32b5-4d3c-b4e0-abddcf73f5e9/0/323030313a6466323a653738303a3a2f34382d3438203d3e20313430303037.roa File: 323030313a6466323a653738303a3a2f34382d3438203d3e20313430303037.roa (raw, json) Hash identifier: LhhKsTHZb0W+YqAY2/NdRIyTwQCadQwR5qevYal41H8= Subject key identifier: D8:DD:7C:F0:0F:8A:B5:F8:F1:34:CB:54:6A:93:57:36:37:2B:FE:DF Certificate issuer: /CN=157748842D6BEE36DEE3B1999F10079808FF41C0 Certificate serial: 178ECB727BAEE27ED42F6B2E5B7F91BF5C6B32FF Authority key identifier: 15:77:48:84:2D:6B:EE:36:DE:E3:B1:99:9F:10:07:98:08:FF:41:C0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157748842D6BEE36DEE3B1999F10079808FF41C0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e46f5a05-32b5-4d3c-b4e0-abddcf73f5e9/0/323030313a6466323a653738303a3a2f34382d3438203d3e20313430303037.roa Signing time: Mon 15 Jul 2024 18:02:15 +0000 ROA not before: Mon 15 Jul 2024 17:57:15 +0000 ROA not after: Mon 14 Jul 2025 18:02:15 +0000 asID: 140007 IP address blocks: 2001:df2:e780::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e46f5a05-32b5-4d3c-b4e0-abddcf73f5e9/0/157748842D6BEE36DEE3B1999F10079808FF41C0.crl rsync://repo-rpki.idnic.net/repo/e46f5a05-32b5-4d3c-b4e0-abddcf73f5e9/0/157748842D6BEE36DEE3B1999F10079808FF41C0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157748842D6BEE36DEE3B1999F10079808FF41C0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:8e:cb:72:7b:ae:e2:7e:d4:2f:6b:2e:5b:7f:91:bf:5c:6b:32:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157748842D6BEE36DEE3B1999F10079808FF41C0 Validity Not Before: Jul 15 17:57:15 2024 GMT Not After : Jul 14 18:02:15 2025 GMT Subject: CN=D8DD7CF00F8AB5F8F134CB546A935736372BFEDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:57:07:a3:3e:f5:86:aa:cf:76:a7:5a:3e:da: 4d:8a:ff:45:85:23:dc:5e:80:82:68:20:14:58:4f: 28:af:39:24:71:fa:eb:84:66:ae:04:2d:76:7f:46: 19:28:10:6b:d1:79:08:e4:58:35:4e:b0:25:0a:00: c0:7c:45:ce:86:02:65:eb:b1:52:26:74:c4:87:c2: 26:10:d6:11:8b:7d:48:96:7f:19:ea:57:0c:e5:43: f9:49:8f:07:8e:56:5e:e6:94:6e:bb:7e:94:8c:8f: 58:43:a7:d5:52:ab:77:11:8f:8a:fc:87:fe:a3:97: 19:d3:5e:f8:ff:c3:80:aa:8f:17:87:af:1c:c1:ea: 65:db:21:cc:60:44:49:dc:42:8d:da:e9:26:de:1d: a2:9d:87:7a:b4:69:e5:32:0a:4b:e8:f6:92:00:7a: 53:4b:92:3c:d6:d9:25:0c:41:26:78:82:5c:ef:2c: d8:22:a4:a3:76:34:80:8d:57:44:23:04:e7:67:5a: 73:e0:e2:70:51:28:ff:61:56:ec:df:a4:08:27:bd: a6:5e:9a:26:09:24:03:c9:b4:13:24:44:76:68:6e: b7:f7:b1:c4:43:67:08:d1:82:2d:09:97:21:b8:ac: 0d:a9:2a:11:96:de:70:04:95:85:58:ff:98:be:4b: 83:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:DD:7C:F0:0F:8A:B5:F8:F1:34:CB:54:6A:93:57:36:37:2B:FE:DF X509v3 Authority Key Identifier: keyid:15:77:48:84:2D:6B:EE:36:DE:E3:B1:99:9F:10:07:98:08:FF:41:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e46f5a05-32b5-4d3c-b4e0-abddcf73f5e9/0/157748842D6BEE36DEE3B1999F10079808FF41C0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157748842D6BEE36DEE3B1999F10079808FF41C0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e46f5a05-32b5-4d3c-b4e0-abddcf73f5e9/0/323030313a6466323a653738303a3a2f34382d3438203d3e20313430303037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df2:e780::/48 Signature Algorithm: sha256WithRSAEncryption 2e:89:c2:33:aa:67:f9:19:e2:57:7f:5e:0c:07:63:b0:6d:d3: 42:27:83:c4:5e:9b:ef:bc:d2:7a:fa:ad:f9:a2:00:92:5f:ab: c3:bc:ff:6b:48:3b:ee:58:80:e0:30:5d:1f:50:d8:b8:17:ef: 44:c0:6a:89:cc:0f:86:26:5d:74:52:ee:59:28:07:2c:72:c9: c1:eb:82:f5:f1:e4:ac:f5:60:6b:60:1e:4e:e1:60:99:41:93: a9:ac:e1:b6:e5:21:53:fb:ce:e8:2f:65:89:48:35:ea:c9:a6: 68:9d:91:20:9d:c0:52:5a:f8:66:6b:02:44:c3:ac:62:d7:e0: 22:ce:f7:bf:75:98:93:e9:9a:01:6b:20:97:a2:50:14:53:d1: 52:3d:fb:07:6e:36:15:36:79:86:cd:98:21:e7:53:23:a1:55: 55:a4:b7:25:1e:3f:d1:dc:99:2e:c3:a3:c0:41:4e:c5:a1:bc: 52:05:fc:41:e5:64:c8:72:54:f4:fa:47:13:fd:af:f3:cf:1b: d8:97:2c:f5:78:8f:87:97:24:df:bf:b5:d9:f9:7e:0c:31:39: 7e:21:ba:69:ed:1c:5f:45:bd:d4:c5:f7:56:62:06:40:73:69: 25:85:c6:f7:24:b9:91:26:cb:cc:cb:d6:d6:aa:1e:a9:42:6a: 2a:a0:8a:54 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgIUF47Lcnuu4n7UL2suW3+Rv1xrMv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3NzQ4ODQyRDZCRUUzNkRFRTNCMTk5OUYxMDA3OTgw OEZGNDFDMDAeFw0yNDA3MTUxNzU3MTVaFw0yNTA3MTQxODAyMTVaMDMxMTAvBgNV BAMTKEQ4REQ3Q0YwMEY4QUI1RjhGMTM0Q0I1NDZBOTM1NzM2MzcyQkZFREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/VwejPvWGqs92p1o+2k2K/0WF I9xegIJoIBRYTyivOSRx+uuEZq4ELXZ/RhkoEGvReQjkWDVOsCUKAMB8Rc6GAmXr sVImdMSHwiYQ1hGLfUiWfxnqVwzlQ/lJjweOVl7mlG67fpSMj1hDp9VSq3cRj4r8 h/6jlxnTXvj/w4CqjxeHrxzB6mXbIcxgREncQo3a6SbeHaKdh3q0aeUyCkvo9pIA elNLkjzW2SUMQSZ4glzvLNgipKN2NICNV0QjBOdnWnPg4nBRKP9hVuzfpAgnvaZe miYJJAPJtBMkRHZobrf3scRDZwjRgi0JlyG4rA2pKhGW3nAElYVY/5i+S4PbAgMB AAGjggI9MIICOTAdBgNVHQ4EFgQU2N188A+KtfjxNMtUapNXNjcr/t8wHwYDVR0j BBgwFoAUFXdIhC1r7jbe47GZnxAHmAj/QcAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NDZmNWEwNS0zMmI1LTRkM2MtYjRlMC1hYmRkY2Y3M2Y1ZTkvMC8xNTc3NDg4NDJE NkJFRTM2REVFM0IxOTk5RjEwMDc5ODA4RkY0MUMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU3NzQ4ODQyRDZCRUUzNkRFRTNCMTk5OUYxMDA3OTgwOEZG NDFDMC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0NmY1YTA1LTMyYjUtNGQzYy1i NGUwLWFiZGRjZjczZjVlOS8wLzMyMzAzMDMxM2E2NDY2MzIzYTY1MzczODMwM2Ez YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMwMzAzMDM3LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN 8ueAMA0GCSqGSIb3DQEBCwUAA4IBAQAuicIzqmf5GeJXf14MB2OwbdNCJ4PEXpvv vNJ6+q35ogCSX6vDvP9rSDvuWIDgMF0fUNi4F+9EwGqJzA+GJl10Uu5ZKAcscsnB 64L18eSs9WBrYB5O4WCZQZOprOG25SFT+87oL2WJSDXqyaZonZEgncBSWvhmawJE w6xi1+Aizve/dZiT6ZoBayCXolAUU9FSPfsHbjYVNnmGzZgh51MjoVVVpLclHj/R 3Jkuw6PAQU7FobxSBfxB5WTIclT0+kcT/a/zzxvYlyz1eI+HlyTfv7XZ+X4MMTl+ Ibpp7RxfRb3UxfdWYgZAc2klhcb3JLmRJsvMy9bWqh6pQmoqoIpU -----END CERTIFICATE-----Generated at Sun Nov 24 23:06:10 2024 by rpki-client on console-ams.rpki-client.org